The Safe Web Guide.
Scam Alerts, Device Protection, What To Do If TargetedMonday, April 6, 2026

Locked Out: How to Prevent and Recover from Ransomware Attacks

Imagine waking up and turning on your laptop, only to be greeted by a bright red screen and a ticking clock. The message says: 'All your files have been encrypted. To get your photos and documents back, you must pay £500 in Bitcoin within 48 hours. If you don't pay, everything will be deleted forever.' Panic, anger, and a sense of total violation set in. You are the victim of a ransomware attack.

If you are looking for a what is ransomware simple explanation, think of it as a digital kidnapping. A criminal sneaks a piece of software onto your device that puts all your files into a giant, unbreakable digital safe and they are the only ones with the key. Today, we're going to show you how to build a shield against this threat so that even if a hacker gets in, they leave empty-handed.

How Ransomware Sneaks In

Hackers are lazy; they don't want to work hard to break into your computer. Instead, they use 'Social Engineering' to trick you into inviting them in. The most common method is a phishing email that looks like a shipping invoice or a 'Security Update' notification. When you click the attachment or the link, the ransomware silently installs in the background. It waits until you are asleep, then starts scrambling your files one by one.

Why Payers Get Scammed Twice

The police and security experts have one piece of advice: **Never pay the ransom.** These are criminals, not honest businessmen. Statistics show that 50% of people who pay the ransom *still* never get their files back. Once they know you are willing to pay, they often ask for more money or leave hidden software behind to attack you again in six months.

3 Steps to Become Ransomware-Proof

  1. The 3-2-1 Backup Rule: This is the single most important rule in computer security. Keep 3 copies of your data, on 2 different types of media (like an external hard drive and the cloud), with 1 copy stored physically outside your home. If a hacker locks your laptop, you just wipe the machine and restore from your external drive. The hacker has zero power over you.
  2. Disable 'Macros' in Office: Many ransomware attacks hide inside Word or Excel documents. Go into your Word settings and ensure that 'Macros' are disabled. This stops malicious documents from automatically running programs the second you open them.
  3. Use 'Controlled Folder Access': Windows has a hidden feature called 'Controlled Folder Access.' Turn it on! It tells your computer that only 'trusted' apps like Word or Photoshop are allowed to change your files. If ransomware tries to scramble your photos, Windows will block it and send you an alert.

What to Do If You Are Attacked

If you see the ransom screen, disconnect from the internet immediately. Unplug the router and turn off the Wi-Fi. This stops the ransomware from spreading to other devices in your house or talking to the hacker's server. Next, take a photo of the screen with your phone—this is evidence for the police. Then, call a professional. Do not try to fix it yourself, as you might permanently delete the chance of recovering your files.

The Golden Rule: An offline backup is the only cure for ransomware. If your files are saved on an external hard drive that is sitting in a drawer, no hacker in the world can touch them.

Ready for more insights?